ports/xorg
3
0
Fork 0
Code Issues Pull Requests Activity
3,041 Commits 17 Branches 40 Tags 4.2 MiB
580fdf9024
Commit Graph

131 Commits

Author SHA1 Message Date
Fredrik Rinnestam
6aa00ecd4e [notify] xorg-server: updated to 1.20.9. Fix for CVE-2020-14345 
CVE-2020-14346, CVE-2020-14361, CVE-2020-14362

Multiple input validation failures in X server extensions
=========================================================

All theses issuses  can lead to local privileges elevation
on systems where the X server is running privileged.

* CVE-2020-14345 / ZDI CAN 11428 XkbSetNames Out-Of-Bounds Access

The handler for the XkbSetNames request does not validate the request
length before accessing its contents.

* CVE-2020-14346 / ZDI CAN 11429 XIChangeHierarchy Integer Underflow

An integer underflow exists in the handler for the XIChangeHierarchy
request.

* CVE-2020-14361 / ZDI CAN 11573 XkbSelectEvents Integer Underflow

An integer underflow exist in the handler for the XkbSelectEvents
request.

* CVE-2020-1436 / ZDI CAN 11574 XRecordRegisterClients Integer Underflow

An integer underflow exist in the handler for the CreateRegister
request of the X record extension.
 2020-08-25 20:15:00 +02:00
Fredrik Rinnestam
3a026cd9c1 [notify] xorg-server: Fix for CVE-2020-14347. 
X.Org security advisory: July 31, 2020

X Server Pixel Data Uninitialized Memory Information Disclosure
===============================================================

CVE-2020-14347

Allocation for pixmap data in AllocatePixmap() does not initialize the
memory in xserver, it leads to leak uninitialize heap memory to
clients. When the X server runs with elevated privileges.

This flaw can lead to ASLR bypass, which when combined with other
flaws (known/unknown) could lead to lead to privilege elevation in the
client.
 2020-08-01 16:17:09 +02:00
Juergen Daubert
5732fa490c xorg-server: update to 1.20.8 2020-04-01 14:15:21 +02:00
Juergen Daubert
5ca9a0b201 xorg-server: update to 1.20.7 2020-01-15 16:11:49 +01:00
Juergen Daubert
7993447bd6 xorg-server: update to 1.20.6 2019-11-23 11:59:13 +01:00
Matt Housh
f018389939 xorg-server: patched for GL API version change from libglvnd 2019-10-19 12:30:12 -05:00
Danny Rawlins
118b1c9428 xorg: dependency cleanup 2019-08-25 23:41:05 +10:00
Fredrik Rinnestam
c6f94a4be9 xorg-server: updated to 1.20.5 2019-05-31 00:11:45 +02:00
Fredrik Rinnestam
f682fbfea9 xorg-mkfontdir: purged from dependencies 2019-03-03 00:27:32 +01:00
Fredrik Rinnestam
c35122e23a xorg-server: updated to 1.20.4 2019-02-26 22:36:40 +01:00
Fredrik Rinnestam
6458c60668 [notify] xorg-server: updated to 1.20.3. Fix for CVE-2018-14665 2018-10-25 17:42:15 +02:00
Fredrik Rinnestam
bd6bcabe24 xorg-server: updated to 1.20.2 2018-10-16 00:00:09 +02:00
Juergen Daubert
53ca1b9644 xorg-server: update to 1.20.1 2018-08-07 19:17:39 +02:00
Fredrik Rinnestam
383464245f xorg-server: updated to 1.20.0 2018-05-10 20:39:25 +02:00
Danny Rawlins
644160c64d clean up dependency tree 2018-04-14 20:01:33 +10:00
Fredrik Rinnestam
354dfe8d1e xorg-server: dep cleanup 2018-02-08 21:02:01 +01:00
Fredrik Rinnestam
62af72a7dc xorg: adapted deps to use xorg-xorgproto 2018-02-08 20:57:33 +01:00
Fredrik Rinnestam
0c6985ada1 xorg-server: updated to 1.19.6 2017-12-21 02:25:37 +01:00
Fredrik Rinnestam
86a1256c73 xorg-server: updated to 1.19.5. Fixes for CVEs 2017-12176 through 2017-12187 
C is a terrible language, please stop writing code in it.
 2017-10-12 21:57:21 +02:00
Fredrik Rinnestam
e942dd764f xorg-server: updated to 1.19.4 2017-10-05 00:57:47 +02:00
Juergen Daubert
cfb5574453 [notify] xorg-server: update to 1.19.3-47 
includes fixes for CVE-2017-10971 and CVE-2017-10972

Tar-ball generated from the xserver 1.19 branch until
126144c2355ce5a3a350f15ef97389c7f34bb6fb, see
https://cgit.freedesktop.org/xorg/xserver/commit/?h=server-1.19-branch
 2017-10-02 17:08:11 +02:00
Fredrik Rinnestam
2f31a9e4c1 xorg-server: updated to 1.19.3 2017-03-15 22:29:33 +01:00
Danny Rawlins
a22e450b2f [notify] xorg-server: add missing dependency xorg-font-util, remove redundant deps xorg-libpixman xorg-xf86vidmodeproto 2017-03-06 09:51:14 +11:00
Fredrik Rinnestam
f27fff5876 [notify] xorg-server: updated to 1.19.2. Fix for CVE-2017-2624. 2017-03-04 01:24:46 +01:00
Fredrik Rinnestam
bdad33aa09 xorg-server: updated to 1.19.1 2017-01-11 22:43:39 +01:00
Fredrik Rinnestam
49253c8e33 [notify] xorg-server: updated to 1.19. Requires driver rebuild due to ABI changes 2016-11-16 12:34:29 +01:00
Fredrik Rinnestam
8eb53f14e5 xorg-server: updated to 1.18.4 2016-07-19 20:44:46 +02:00
Juergen Daubert
ccc5bcdc68 xorg-server: update to 1.18.3 2016-04-06 17:48:48 +02:00
Fredrik Rinnestam
b28f76992e xorg-server: added patch for glamor regression 2016-03-19 23:02:51 +01:00
Fredrik Rinnestam
d35058ce58 xorg-server: updated to 1.18.2 2016-03-12 02:35:42 +01:00
Fredrik Rinnestam
65bc9c003d xorg-server: updated to 1.18.1 2016-02-10 21:28:31 +01:00
Fredrik Rinnestam
1ef3e9471e [notify] xorg-server: updated to 1.18.0. requires rebuild of drivers 2015-11-09 23:09:18 +01:00
Juergen Daubert
621281bf48 Merge branch '3.1' into 3.2 2015-10-28 18:44:52 +01:00
Juergen Daubert
2037169aa7 xorg-server: update to 1.17.4 2015-10-28 18:44:00 +01:00
Juergen Daubert
24e253e4d9 Merge branch '3.1' into 3.2 2015-10-27 20:00:39 +01:00
Juergen Daubert
b87c6bc483 xorg-server: update to 1.17.3 2015-10-27 15:04:44 +01:00
Matt Housh
59551b8ea2 xorg-server: moved man pages to /usr/share/man 2015-08-12 11:06:49 -05:00
Fredrik Rinnestam
821f24a5b1 [notify] xorg-server: updated to 1.17.2 
Fix for CVE-2015-3164 in Xwayland
 2015-06-16 21:55:53 +02:00
Danny Rawlins
e7954eaefc xorg-server: add missing dependency xorg-xf86vidmodeproto 2015-05-04 12:58:38 +10:00
Fredrik Rinnestam
6c03552a50 [notify] xorg-server: updated to 1.17.1. Resolves CVE-2015-0255 2015-02-11 00:00:08 +01:00
Danny Rawlins
f4d0d75ed3 [notify] xorg-server: 1.16.3 -> 1.17.0 
New dependency: xorg-xcb-util-keysyms
Be sure to read the readme file on upgrading, prt-get readme xorg-server
 2015-02-09 22:38:03 +11:00
Fredrik Rinnestam
2e21804d58 xorg-server: updated to 1.16.3 2014-12-20 14:16:06 +01:00
Juergen Daubert
f41b6440d1 xorg-server: explicit disable systemd-logind 2014-12-10 20:59:07 +01:00
Juergen Daubert
0ef93b0638 [notify] xorg-server: update to 1.16.2.901 
we decided to update to this rc version of xorg-server because of the
huge amount of fixed security issues.

See
- http://lists.x.org/archives/xorg-announce/2014-December/002500.html
- http://lists.x.org/archives/xorg-announce/2014-December/002501.html
 2014-12-09 21:59:06 +01:00
Danny Rawlins
3c060a7fd9 xorg-server: 1.16.1 -> 1.16.2 2014-11-11 21:54:53 +11:00
Fredrik Rinnestam
1e8b801787 xorg-server: updated to 1.16.1 2014-09-21 15:16:01 +02:00
Fredrik Rinnestam
9358cef5cf xorg-server: cleanups 2014-07-19 17:06:23 +02:00
Fredrik Rinnestam
900ac76f5d [notify] xorg-server: updated to 1.16. Requires the new dependency "libepoxy". 
xorg-server 1.16 is not ABI compatible with drivers built for older
version. Please rebuild your drivers!. xorg-server 1.16 now comes with
glamor enabled and thus deprecates the old xorg-glamor-egl package.
 2014-07-19 16:41:40 +02:00
Fredrik Rinnestam
7167524df1 xorg-server: updated to 1.15.2 2014-06-27 12:17:09 +02:00
Fredrik Rinnestam
f30e2d2787 xorg-server: updated to 1.15.1 2014-04-16 19:33:38 +02:00